Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Positive Finds addware...

Positive Finds addware...


Plagegeister aller Art und deren Bekämpfung: Positive Finds addware...

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.02.2015, 02:34   #1
DannyDk2
 
Positive Finds addware... - Standard

Positive Finds addware...


Hallo Trojaner Board,
ich hab das Problem das ich mir wohl ein Virus eingefangen habe oder ne adware seit 2 tagen habe ich nun diese Positive Finds ad Sache im Chrome drinnen und kann diesen mist auch nicht loswerden habe es nun mit allerhand anti Programmen oder manuellen Anleitung versucht zumal ich nicht mal Prozesse oder unter Programme was finde was ärgerlich ist ich hoffe Ihr könnt mir helfen..

Alt 11.02.2015, 06:32   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Positive Finds addware... - Standard

Positive Finds addware...


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 12.02.2015, 03:25   #3
DannyDk2
 
Positive Finds addware... - Standard

Positive Finds addware...


Wo finde ich die Addition.txt ? also im genauen ?:/


FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-02-2015
Ran by Admin (administrator) on ADMIN-PC on 11-02-2015 12:36:43
Running from C:\Users\Admin\Downloads
Loaded Profiles: Admin (Available profiles: Admin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
() C:\Program Files\Sades 7.1CH Gaming Headset\CPL\FaceLift_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.82.106.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.82.106.0\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.82.106.0\OverwolfHelper64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.82.106.0\OverwolfBrowser.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Admin\Downloads\FRST64 (1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2012-10-25] (VIA)
HKLM\...\Run: [Cm6620Sound] => C:\Program Files\Sades 7.1CH Gaming Headset\CPL\FaceLift_x64.exe [2250240 2014-04-11] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016 2014-12-14] (AVAST Software)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3977576 2015-01-20] (LogMeIn Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585536 2015-01-06] (Razer Inc.)
HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\Run: [GoogleChromeAutoLaunch_A5B343D047FD8BD2F268B0EA0F8DBD7C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592 2015-02-04] (Google Inc.)
HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [40688 2015-01-15] (Overwolf LTD)
HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\MountPoints2: F - F:\Setup.EXE
HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\MountPoints2: {3e5cf672-a938-11e4-922a-806e6f6e6963} - F:\Autorun.exe
HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\MountPoints2: {5d980360-87b5-11e4-aa25-806e6f6e6963} - E:\Autorun.exe
IFEO\CNC3.exe: [Debugger] 
IFEO\CNC3EP1.exe: [Debugger] 
IFEO\generals.exe: [Debugger] 
IFEO\RA3.exe: [Debugger] 
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2478082214-1905618512-1768290352-1000 -> {D0307B33-39F5-4D35-8250-C2E6DD3307B6} URL = https://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)

FireFox:
========
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-14]

Chrome: 
=======
CHR HomePage: Default -> hxxp://google.de/
CHR StartupUrls: Default -> "hxxp://google.de/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-13]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-13]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-13]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-13]
CHR Extension: (Google-Suche) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-13]
CHR Extension: (Google Tabellen) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-13]
CHR Extension: (Avast Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-12-15]
CHR Extension: (Skype Click to Call) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-12-18]
CHR Extension: (Google Wallet) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-13]
CHR Extension: (Google Mail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-13]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-14]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-14] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-14] (Avast Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [760192 2015-01-09] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [175136 2015-01-07] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
S2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-01-12] (Hi-Rez Studios) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-01-14] (LogMeIn, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-02-02] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [998640 2015-01-15] (Overwolf LTD)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-02-03] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2015-02-03] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186048 2014-12-09] ()
R2 RzMaelstromVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe [4250624 2014-06-09] (A-Volute) [File not signed]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-10-22] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-01-13] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-14] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-14] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-14] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-14] ()
R3 CMUAC; C:\Windows\System32\DRIVERS\CMUAC.SYS [390656 2014-01-08] (C-Media Inc.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-12-26] (Disc Soft Ltd)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 RZMAELSTROMVADService; C:\Windows\System32\drivers\RzMaelstromVAD.sys [32768 2014-06-09] (Windows (R) Win 7 DDK provider)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2014-12-09] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2014-12-10] (Razer, Inc.)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [270728 2014-12-14] (Avast Software)
S3 cleanhlp; \??\C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-11 12:36 - 2015-02-11 12:37 - 00017224 _____ () C:\Users\Admin\Downloads\FRST.txt
2015-02-11 12:36 - 2015-02-11 12:36 - 02132992 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2015-02-11 12:36 - 2015-02-11 12:36 - 02132992 _____ (Farbar) C:\Users\Admin\Downloads\FRST64 (1).exe
2015-02-11 12:36 - 2015-02-11 12:36 - 00000000 ____D () C:\FRST
2015-02-11 01:53 - 2015-02-11 01:53 - 00000921 _____ () C:\Users\Admin\Desktop\JRT.txt
2015-02-11 01:43 - 2015-02-11 01:44 - 01388274 _____ (Thisisu) C:\Users\Admin\Downloads\JRT42.exe
2015-02-11 01:11 - 2015-02-11 01:11 - 00000000 ____D () C:\ProgramData\Emsisoft
2015-02-10 22:46 - 2015-02-10 22:47 - 172265200 _____ (Emsisoft Ltd. ) C:\Users\Admin\Downloads\EmsisoftAntiMalware4799Setup.exe
2015-02-10 22:13 - 2015-02-10 22:13 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-10 22:12 - 2015-02-10 22:13 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Admin\Downloads\mbam-setup-2.0.4.1028.exe
2015-02-10 21:58 - 2015-02-10 22:00 - 00000000 ____D () C:\AdwCleaner
2015-02-10 21:57 - 2015-02-10 21:58 - 02112512 _____ () C:\Users\Admin\Downloads\AdwCleaner.exe
2015-02-09 20:23 - 2014-12-10 21:43 - 00129600 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2015-02-09 20:22 - 2015-02-09 20:22 - 00000000 ____D () C:\ProgramData\RzMaelstromVAD_1.1.58.1854
2015-02-09 20:22 - 2014-12-09 23:21 - 00037184 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2015-02-09 20:20 - 2015-02-09 20:23 - 00000000 ____D () C:\Program Files (x86)\Razer
2015-02-09 20:20 - 2015-02-09 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-02-09 20:19 - 2015-02-09 20:23 - 00000000 ____D () C:\ProgramData\Razer
2015-02-09 20:19 - 2015-02-09 20:19 - 01725304 _____ (Razer Inc.) C:\Users\Admin\Downloads\RazerSurroundInstaller_v2.00.10.exe
2015-02-09 20:19 - 2015-02-09 20:19 - 00000000 ____D () C:\Users\Admin\AppData\Local\Razer
2015-02-09 17:09 - 2015-02-09 17:09 - 00001440 _____ () C:\Users\Public\Desktop\Free YouTube Download.lnk
2015-02-09 17:09 - 2015-02-09 17:09 - 00001245 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2015-02-09 17:09 - 2015-02-09 17:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-02-09 17:09 - 2015-02-09 17:09 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack
2015-02-09 17:08 - 2015-02-09 17:09 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DVDVideoSoft
2015-02-09 17:08 - 2015-02-09 17:09 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2015-02-09 17:07 - 2015-02-09 17:07 - 03533024 _____ (DVDVideoSoft Ltd. ) C:\Users\Admin\Downloads\FreeYouTube53Download.exe
2015-02-09 17:07 - 2015-02-09 17:07 - 03533024 _____ (DVDVideoSoft Ltd. ) C:\Users\Admin\Downloads\FreeYouTube53Download (1).exe
2015-02-09 17:05 - 2015-02-09 17:05 - 00100632 _____ (GreenTree Applications SRL) C:\Users\Admin\Downloads\YTDSetup.exe
2015-02-07 18:55 - 2015-02-07 18:55 - 00000000 ____D () C:\Users\Admin\Documents\Aspyr
2015-02-07 18:55 - 2015-02-07 18:55 - 00000000 ____D () C:\Users\Admin\AppData\Local\Aspyr
2015-02-07 13:46 - 2015-02-07 13:46 - 00114352 _____ (GameRanger Technologies) C:\Users\Admin\Downloads\GameRangerSetup.exe
2015-02-07 13:46 - 2015-02-07 13:46 - 00001032 _____ () C:\Users\Admin\Desktop\GameRanger.lnk
2015-02-07 13:46 - 2015-02-07 13:46 - 00001018 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2015-02-07 13:46 - 2015-02-07 13:46 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\GameRanger
2015-02-03 18:47 - 2015-02-03 22:34 - 00000000 ____D () C:\Users\Admin\Documents\Battlefield Play4Free
2015-02-03 18:46 - 2015-02-03 18:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2015-02-03 18:06 - 2015-02-03 18:07 - 00000000 ____D () C:\Users\Admin\Documents\Battlefield 3
2015-02-03 16:50 - 2015-02-03 22:39 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-02-03 11:53 - 2015-02-03 11:53 - 00000000 ____D () C:\Users\Admin\Documents\BFH Beta 2
2015-02-02 23:19 - 2015-02-02 23:19 - 00000000 ____D () C:\Users\Admin\AppData\Local\Criterion Games
2015-02-02 20:25 - 2015-02-02 20:25 - 00000000 ____D () C:\Users\Admin\Documents\Red Alert 3 Uprising
2015-01-31 19:55 - 2015-01-31 18:13 - 02601752 _____ () C:\Windows\SysWOW64\pbsvc_moh.exe
2015-01-31 19:39 - 2015-01-31 19:39 - 00000000 ____D () C:\Windows\1C4551A64743409391E41477CD655043.TMP
2015-01-31 19:09 - 2015-01-31 19:09 - 00000000 ____D () C:\Users\Admin\AppData\Local\Doctor Entertainment AB
2015-01-31 15:16 - 2015-01-31 15:16 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2015-01-31 15:15 - 2015-01-09 23:27 - 00621200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-01-31 15:12 - 2015-01-13 05:15 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 32102544 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 25459856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 24765584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 20465296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 17250776 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 13295552 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 13210248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 10774544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 10714488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 10274448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-01-31 15:12 - 2015-01-10 09:07 - 03607184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 03245712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 02902456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434725.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 01556808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434725.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00994712 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00969360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00942736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00929424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00906384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00877488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00353040 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00305320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-01-31 15:12 - 2015-01-10 09:07 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-01-31 12:25 - 2015-01-31 12:25 - 00179250 _____ () C:\Windows\Cm6620.ini.cfl
2015-01-31 12:25 - 2015-01-31 12:25 - 00002047 _____ () C:\Users\Admin\Desktop\Sades 7.1CH Gaming Headset.lnk
2015-01-31 12:25 - 2015-01-31 12:25 - 00000134 _____ () C:\Windows\system\Dlap.pfx
2015-01-31 12:25 - 2015-01-31 12:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sades 7.1CH Gaming Headset
2015-01-31 12:25 - 2015-01-31 12:25 - 00000000 ____D () C:\Program Files\Sades 7.1CH Gaming Headset
2015-01-31 12:25 - 2013-12-25 08:48 - 00090054 ____N () C:\Windows\Install-02.bmp
2015-01-31 12:25 - 2013-12-25 08:48 - 00082478 ____N () C:\Windows\Install-01.bmp
2015-01-31 12:25 - 2013-11-12 02:30 - 00831488 ____N () C:\Windows\system32\Cmeau6620.exe
2015-01-31 12:24 - 2015-01-31 12:25 - 00000398 _____ () C:\Windows\Cm6620.ini.imi
2015-01-31 12:24 - 2014-04-22 12:20 - 00004125 ____N () C:\Windows\Cm6620.ini.cfg
2015-01-31 12:24 - 2014-01-08 08:08 - 03019032 _____ (C-Media Electronics Inc.) C:\Windows\system32\CMEffectAPO.dll
2015-01-31 12:24 - 2014-01-08 08:08 - 00390656 _____ (C-Media Inc.) C:\Windows\system32\Drivers\CMUAC.SYS
2015-01-31 12:24 - 2014-01-08 08:08 - 00208896 _____ (C-Media Electronics Inc.) C:\Windows\system32\CMCplExt.dll
2015-01-31 12:24 - 2009-08-19 18:00 - 00359424 ____N () C:\Windows\system32\CmiInstallResAll64.dll
2015-01-31 12:16 - 2015-01-31 12:26 - 00000000 ____D () C:\ProgramData\FaceLift
2015-01-31 11:53 - 2015-01-31 11:53 - 00002984 _____ () C:\Windows\System32\Tasks\{644EA504-C0A3-455C-A1E5-84F1CDCBB4E4}
2015-01-31 11:53 - 2015-01-31 11:53 - 00002984 _____ () C:\Windows\System32\Tasks\{3ADC9536-92CB-4904-8AD4-B3154C4658AC}
2015-01-31 11:50 - 2015-01-31 11:50 - 45118803 _____ () C:\Users\Admin\Downloads\81012149.rar
2015-01-31 11:49 - 2015-01-31 11:49 - 03333190 _____ () C:\Users\Admin\Downloads\WinDRV_1304 (1).exe
2015-01-31 11:48 - 2015-01-31 11:49 - 03333190 _____ () C:\Users\Admin\Downloads\WinDRV_1304.exe
2015-01-31 07:40 - 2015-01-31 07:40 - 00003278 _____ () C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-2478082214-1905618512-1768290352-1000
2015-01-30 00:33 - 2015-01-30 00:36 - 00003197 _____ () C:\Users\Admin\Desktop\C&C Online.lnk
2015-01-30 00:33 - 2015-01-30 00:33 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CNCOnline
2015-01-30 00:24 - 2015-01-30 00:29 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Red Alert 3 Uprising
2015-01-29 22:07 - 2015-02-07 03:28 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\TS3Client
2015-01-29 22:07 - 2015-01-29 22:07 - 00000967 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-01-29 22:07 - 2015-01-29 22:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-01-29 22:07 - 2015-01-29 22:07 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2015-01-29 22:06 - 2015-01-29 22:06 - 30014480 _____ (TeamSpeak Systems GmbH) C:\Users\Admin\Downloads\TeamSpeak3-Client-win64-3.0.16.exe
2015-01-29 15:12 - 2015-01-29 15:12 - 00000454 _____ () C:\Users\Admin\Downloads\listen-dsl (1).asx
2015-01-29 15:08 - 2015-01-29 15:08 - 00000462 _____ () C:\Users\Admin\Downloads\listen-dsl.asx
2015-01-29 13:51 - 2015-01-29 13:52 - 02576384 _____ () C:\Users\Admin\Downloads\CNCOnline_2.0.7.msi
2015-01-29 13:25 - 2015-01-29 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-01-29 13:25 - 2015-01-29 13:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-01-29 13:25 - 2015-01-14 11:32 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-01-25 00:32 - 2015-01-25 00:32 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-01-23 12:32 - 2015-01-23 13:23 - 1242294326 _____ () C:\Users\Admin\Downloads\Alchemilla.1.zip
2015-01-19 14:38 - 2015-01-19 14:38 - 00007609 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
2015-01-18 02:01 - 2015-01-25 21:27 - 00000000 ____D () C:\Program Files (x86)\Overwolf
2015-01-18 02:01 - 2015-01-18 02:03 - 00000000 ____D () C:\ProgramData\Overwolf
2015-01-18 02:01 - 2015-01-18 02:01 - 00003728 _____ () C:\Windows\System32\Tasks\Overwolf Updater Task
2015-01-18 02:01 - 2015-01-18 02:01 - 00001975 _____ () C:\Users\Public\Desktop\Overwolf.lnk
2015-01-18 02:01 - 2015-01-18 02:01 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2015-01-18 02:00 - 2015-02-11 12:27 - 00000000 ____D () C:\Users\Admin\AppData\Local\Overwolf
2015-01-18 02:00 - 2015-01-18 02:00 - 01600288 _____ (Overwolf) C:\Users\Admin\Downloads\OverwolfInstaller.exe
2015-01-15 16:04 - 2015-01-15 16:04 - 00000000 ____D () C:\Users\Admin\Desktop\Unpark-CPU-App
2015-01-15 16:02 - 2015-01-15 16:03 - 00546199 _____ () C:\Users\Admin\Downloads\Unpark-CPU-App.zip
2015-01-14 11:51 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 11:51 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 11:51 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 11:51 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 11:51 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 11:51 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 11:51 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 11:51 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 11:51 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 11:51 - 2014-12-11 18:47 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 11:51 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 11:51 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 11:51 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-13 21:59 - 2015-01-15 16:12 - 00001214 _____ () C:\Users\Admin\Desktop\TERA.lnk
2015-01-13 18:10 - 2015-01-31 19:56 - 00000000 ____D () C:\Users\Admin\Documents\EA Games
2015-01-13 18:10 - 2015-01-13 18:11 - 00001591 _____ () C:\Windows\DXError.log
2015-01-12 01:58 - 2015-01-31 19:30 - 00000000 ____D () C:\Users\Admin\AppData\Local\wf-launcher
2015-01-12 01:58 - 2015-01-31 19:15 - 00000000 ____D () C:\ProgramData\GFACE

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-11 12:37 - 2014-12-13 17:31 - 01826551 _____ () C:\Windows\WindowsUpdate.log
2015-02-11 12:35 - 2009-07-14 05:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-11 12:35 - 2009-07-14 05:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-11 12:27 - 2014-12-18 19:01 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Skype
2015-02-11 12:26 - 2014-12-20 12:59 - 00000000 ____D () C:\Users\Admin\AppData\Local\LogMeIn Hamachi
2015-02-11 12:26 - 2009-07-14 05:51 - 00060736 _____ () C:\Windows\setupact.log
2015-02-11 12:25 - 2014-12-13 21:22 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-11 12:25 - 2014-12-13 20:54 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-11 12:25 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-11 03:47 - 2014-12-13 20:55 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-11 03:04 - 2014-12-13 20:54 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-11 02:11 - 2010-11-21 04:47 - 00013816 _____ () C:\Windows\PFRO.log
2015-02-10 22:23 - 2011-04-12 09:28 - 00000000 ____D () C:\Windows\ShellNew
2015-02-10 13:47 - 2014-12-14 16:51 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-02-10 13:46 - 2014-12-13 20:53 - 00058464 _____ () C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-10 13:45 - 2009-07-14 05:45 - 00265248 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-09 00:49 - 2014-12-16 14:38 - 00000000 ____D () C:\ProgramData\Origin
2015-02-09 00:07 - 2014-12-16 19:41 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-02-09 00:07 - 2014-12-16 19:20 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-02-09 00:06 - 2014-12-16 14:37 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-02-07 22:44 - 2014-12-13 22:21 - 00133199 _____ () C:\Windows\DirectX.log
2015-02-07 19:12 - 2014-12-17 17:06 - 00000000 ____D () C:\Users\Admin\Documents\My Games
2015-02-07 14:00 - 2014-12-21 02:18 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\NVIDIA
2015-02-07 00:08 - 2014-12-13 20:54 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-06 13:59 - 2014-12-13 20:54 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-06 13:59 - 2014-12-13 20:54 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-03 22:39 - 2014-12-16 19:20 - 00226680 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-02-03 22:32 - 2014-12-16 19:41 - 00000000 ____D () C:\Users\Admin\AppData\Local\PunkBuster
2015-02-03 18:46 - 2014-12-16 19:19 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-02-03 16:25 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-31 19:09 - 2015-01-07 03:18 - 00000000 ____D () C:\ProgramData\Package Cache
2015-01-31 15:16 - 2014-12-13 21:13 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-01-31 15:15 - 2014-12-13 21:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-31 12:26 - 2014-12-13 21:41 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-31 12:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system
2015-01-31 12:24 - 2014-04-22 12:20 - 00000347 _____ () C:\Windows\system\Cm6620.ini
2015-01-30 00:31 - 2014-12-19 23:03 - 00000000 ____D () C:\Windows\system32\appmgmt
2015-01-25 21:53 - 2014-01-13 20:51 - 05021666 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-01-25 21:53 - 2014-01-13 19:45 - 00736646 _____ () C:\Windows\system32\perfh00A.dat
2015-01-25 21:53 - 2014-01-13 19:45 - 00157728 _____ () C:\Windows\system32\perfc00A.dat
2015-01-25 21:53 - 2014-01-13 19:43 - 00731236 _____ () C:\Windows\system32\perfh010.dat
2015-01-25 21:53 - 2014-01-13 19:43 - 00146100 _____ () C:\Windows\system32\perfc010.dat
2015-01-25 21:53 - 2014-01-13 19:41 - 00698688 _____ () C:\Windows\system32\perfh007.dat
2015-01-25 21:53 - 2014-01-13 19:41 - 00148828 _____ () C:\Windows\system32\perfc007.dat
2015-01-25 21:53 - 2014-01-13 19:39 - 00736906 _____ () C:\Windows\system32\perfh00C.dat
2015-01-25 21:53 - 2014-01-13 19:39 - 00148834 _____ () C:\Windows\system32\perfc00C.dat
2015-01-25 21:53 - 2014-01-13 19:37 - 00705070 _____ () C:\Windows\system32\prfh0416.dat
2015-01-25 21:53 - 2014-01-13 19:37 - 00146910 _____ () C:\Windows\system32\prfc0416.dat
2015-01-25 21:53 - 2009-07-14 06:13 - 05021666 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-21 17:00 - 2014-12-13 21:20 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-21 17:00 - 2014-12-13 21:11 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-20 22:05 - 2014-12-15 03:23 - 00000000 ____D () C:\Users\Admin\Downloads\Gameforge Live
2015-01-18 15:25 - 2014-12-18 00:10 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Awesomium
2015-01-15 03:12 - 2014-12-14 02:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-15 03:01 - 2014-12-14 02:25 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-13 21:59 - 2014-12-15 03:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2015-01-12 02:59 - 2014-12-19 22:59 - 00000000 ____D () C:\Users\Admin\AppData\Local\ArmA 2 OA

==================== Files in the root of some directories =======

2015-01-19 14:38 - 2015-01-19 14:38 - 0007609 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg

Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\FreeYouTubeDownload.exe
C:\Users\Admin\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
C:\Users\Admin\AppData\Local\Temp\HiRezLauncherControls.dll
C:\Users\Admin\AppData\Local\Temp\jre-8u31-windows-au.exe
C:\Users\Admin\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Admin\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Admin\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Admin\AppData\Local\Temp\nvStInst.exe
C:\Users\Admin\AppData\Local\Temp\Quarantine.exe
C:\Users\Admin\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-03 20:33

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-02-2015
Ran by Admin at 2015-02-11 12:38:04
Running from C:\Users\Admin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.3.183.90 - Adobe Systems Incorporated)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (Obsolete) (HKLM-x32\...\Steam App 219540) (Version:  - )
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2206 - AVAST Software)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield Play4Free (HKLM-x32\...\{87686C21-8A15-4b4d-A3F1-11141D9BE094}) (Version:  - EA Digital illusions)
Battlefield™ Hardline-Beta (HKLM-x32\...\{F5526D9D-13AD-4270-8707-AC921D168299}) (Version: 1.0.0.1 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye) (Version:  - )
Borderlands The Pre-Sequel (HKLM-x32\...\Borderlands The Pre-Sequel_is1) (Version:  - )
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version:  - Criterion Games)
C&C:Online (HKLM-x32\...\{1298F091-2180-4779-BDA0-1176247252D0}) (Version: 2.0.7 - Revora)
Command and Conquer: Red Alert 3 - Uprising (HKLM-x32\...\Steam App 24800) (Version:  - EA Los Angeles)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Cry of Fear (HKLM-x32\...\Steam App 223710) (Version:  - Team Psykskallar)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DayZLauncher version 0.0.0.7 (HKLM-x32\...\{E31045B4-9DB5-44DF-9EBD-BD4CFDE640FD}_is1) (Version: 0.0.0.7 - Maca134)
Dead Space (HKLM-x32\...\Steam App 17470) (Version:  - EA Redwood Shores)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.10.1 - Electronic Arts)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Free YouTube Download version 3.2.53.128 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.53.128 - DVDVideoSoft Ltd.)
Gameforge Live 2.0.5 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.5 - Gameforge)
GameRanger (HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\...\GameRanger) (Version:  - GameRanger Technologies)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
Haunted Memories (HKLM-x32\...\Steam App 241640) (Version:  - MadMan Theory Games)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
InfiniteCrisis_410193F41CAE (HKLM-x32\...\InfiniteCrisis_410193F41CAE) (Version:  - Turbine, Inc)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Loadout (HKLM-x32\...\Steam App 208090) (Version:  - Edge of Reality)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.303 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.303 - LogMeIn, Inc.) Hidden
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Medal of Honor(TM) Multiplayer (HKLM-x32\...\Steam App 47830) (Version:  - Electronic Arts)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.52213 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
MURDERED: SOUL SUSPECT™ (HKLM-x32\...\Steam App 233290) (Version:  - Airtight Games)
Nether (HKLM-x32\...\Steam App 247730) (Version:  - Phosphor Games)
Neverwinter (HKLM-x32\...\Steam App 109600) (Version:  - Cryptic Studios)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in Hell Team)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 150114.100101 - Square Enix Ltd)
NVIDIA 3D Vision Controller-Treiber 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.25 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Only If (HKLM-x32\...\Steam App 298260) (Version:  - Creability)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.2.2829 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.82.106.0 - Overwolf Ltd.)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.10 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.23944 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Sades 7.1CH Gaming Headset (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006620}) (Version: 1.00.0010 - SHENZHEN SADES DIGITAL TECHNOLOGY CO.,LTD)
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - Firaxis Games)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2533.0 - Hi-Rez Studios)
Star Wars - Battlefront II (HKLM-x32\...\Steam App 6060) (Version:  - Pandemic Studios)
Star Wars Jedi Knight: Jedi Academy (HKLM-x32\...\Steam App 6020) (Version:  - Raven Software)
Star Wars Republic Commando (HKLM-x32\...\Steam App 6000) (Version:  - LucasArts)
Star Wars: Dark Forces (HKLM-x32\...\Steam App 32400) (Version:  - LucasArts)
Star Wars: Empire at War Gold (HKLM-x32\...\Steam App 32470) (Version:  - Petroglyph)
Star Wars: Knights of the Old Republic (HKLM-x32\...\Steam App 32370) (Version:  - BioWare)
Star Wars: Knights of the Old Republic II (HKLM-x32\...\Steam App 208580) (Version:  - Obsidian Entertainment)
Star Wars: The Force Unleashed II (HKLM-x32\...\Steam App 32500) (Version:  - Aspyr Studios)
Star Wars: The Force Unleashed Ultimate Sith Edition (HKLM-x32\...\Steam App 32430) (Version:  - LucasArts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
Trove (HKLM-x32\...\Glyph Trove) (Version:  - Trion Worlds, Inc.)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Warface (HKLM-x32\...\Steam App 291480) (Version:  - Crytek)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

31-01-2015 12:16:05 Installiert Sades 7.1CH Gaming Headset
31-01-2015 12:18:27 Entfernt Sades 7.1CH Gaming Headset
31-01-2015 12:24:20 Gerätetreiber-Paketinstallation: C-MEDIA Inc. Audio-, Video- und Gamecontroller
31-01-2015 12:26:04 Installiert Sades 7.1CH Gaming Headset
31-01-2015 19:08:01 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
31-01-2015 19:08:58 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
31-01-2015 19:37:49 Microsoft Visual C++ 2005 Redistributable wird installiert
31-01-2015 19:39:10 DirectX wurde installiert
31-01-2015 19:52:16 DirectX wurde installiert
02-02-2015 23:15:01 DirectX wurde installiert
02-02-2015 23:37:14 DirectX wurde installiert
02-02-2015 23:41:25 DirectX wurde installiert
02-02-2015 23:47:07 DirectX wurde installiert
03-02-2015 12:04:57 Windows Update
03-02-2015 16:23:23 DirectX wurde installiert
06-02-2015 13:16:09 Windows Update
07-02-2015 13:54:11 DirectX wurde installiert
07-02-2015 18:50:58 DirectX wurde installiert
07-02-2015 22:43:33 DirectX wurde installiert
09-02-2015 20:21:19 Gerätetreiber-Paketinstallation: Razer Audio-, Video- und Gamecontroller
10-02-2015 16:02:28 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {043E5BDD-BA56-47F1-BFD7-CD98A032C059} - System32\Tasks\{3ADC9536-92CB-4904-8AD4-B3154C4658AC} => C:\Users\Admin\Desktop\Driver from SADES(2013.11)\Setup.exe
Task: {05D58396-09BC-4F28-B8D7-A973B5FF3576} - System32\Tasks\{6638CCBB-C300-4886-A6D4-C3A1F0C1A509} => C:\Users\Admin\Downloads\GlyphInstall-0-120.exe [2014-12-23] (Trion Worlds Inc.)
Task: {103A0621-710D-4985-A029-2526919EB782} - System32\Tasks\{6D7A133E-8C6F-4F1D-BF5C-79760F3E8DEC} => C:\Users\Admin\Downloads\GlyphInstall-0-120.exe [2014-12-23] (Trion Worlds Inc.)
Task: {20EEFA57-3EBF-4996-8815-C97B8BDFA65F} - System32\Tasks\{644EA504-C0A3-455C-A1E5-84F1CDCBB4E4} => C:\Users\Admin\Desktop\Driver from SADES(2013.11)\Setup.exe
Task: {3491E4C9-8198-40CB-8097-E90EEE1F5B22} - System32\Tasks\avastBCLRestartS-1-5-21-2478082214-1905618512-1768290352-1000 => Chrome.exe 
Task: {3B96BB32-2206-4744-99B2-792AC6F1122D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-14] (AVAST Software)
Task: {4DFE55E0-751D-4C98-BDCD-1EDB24BA03AD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-13] (Google Inc.)
Task: {5ABF1C79-03EF-4102-B441-A450BCDF7633} - System32\Tasks\{343F3161-D861-4890-9531-2BB8472FB586} => pcalua.exe -a "C:\Program Files (x86)\Steam\steamapps\common\arma 2 operation arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe" -d "C:\Program Files (x86)\Steam\steamapps\common\arma 2 operation arrowhead\BEsetup"
Task: {62EAF4B4-D2F2-4D42-966D-97564FB6C015} - System32\Tasks\{A3CEECCE-7EAA-47B9-9D72-D1A1C78F4045} => pcalua.exe -a "C:\Program Files (x86)\Steam\steamapps\common\Arma 2\BEsetup\setup_BattlEyeARMA2.exe" -d "C:\Program Files (x86)\Steam\steamapps\common\Arma 2\BEsetup"
Task: {9D57D75D-F35B-4ABD-A003-F68954F6BC79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-13] (Google Inc.)
Task: {A43C9DF3-2AE2-4C2B-B224-03A50587B331} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-01-15] (Overwolf LTD)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2014-12-13 21:22 - 2015-01-10 00:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-12-13 22:09 - 2012-10-25 17:26 - 00078456 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2014-12-13 22:09 - 2012-10-25 17:26 - 00386168 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2015-01-31 12:25 - 2014-04-11 05:31 - 02250240 ____N () C:\Program Files\Sades 7.1CH Gaming Headset\CPL\FaceLift_x64.exe
2015-02-03 16:50 - 2015-02-03 22:39 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-12-09 23:22 - 2014-12-09 23:22 - 00186048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-12-14 16:50 - 2014-12-14 16:50 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-12-14 16:50 - 2014-12-14 16:50 - 05846160 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2015-02-10 17:49 - 2015-02-10 17:49 - 02912768 _____ () C:\Program Files\AVAST Software\Avast\defs\15021001\algo.dll
2014-12-14 16:50 - 2014-12-14 16:50 - 04491192 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2015-01-15 10:04 - 2015-01-15 10:04 - 00025600 _____ () C:\Program Files (x86)\Overwolf\0.82.106.0\CoreAudioApi.dll
2015-01-15 10:04 - 2015-01-15 10:04 - 38713856 _____ () C:\Program Files (x86)\Overwolf\0.82.106.0\libcef.DLL
2014-12-14 16:50 - 2014-12-14 16:51 - 38561576 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-07 00:08 - 2015-02-04 10:02 - 01117512 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libglesv2.dll
2015-02-07 00:08 - 2015-02-04 10:02 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libegl.dll
2015-02-07 00:08 - 2015-02-04 10:02 - 09170760 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll
2015-01-15 10:04 - 2015-01-15 10:04 - 00514528 _____ () C:\Program Files (x86)\Overwolf\0.82.106.0\libglesv2.dll
2015-01-15 10:04 - 2015-01-15 10:04 - 00105952 _____ () C:\Program Files (x86)\Overwolf\0.82.106.0\libegl.dll
2015-02-07 00:08 - 2015-02-04 10:02 - 14965064 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Registry Areas =====================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2478082214-1905618512-1768290352-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Admin (S-1-5-21-2478082214-1905618512-1768290352-1000 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2478082214-1905618512-1768290352-500 - Administrator - Disabled)
Gast (S-1-5-21-2478082214-1905618512-1768290352-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/11/2015 00:32:17 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Das Handle ist ungültig

Error: (02/11/2015 00:26:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2015 02:46:14 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2015 02:18:44 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Das Handle ist ungültig

Error: (02/11/2015 02:13:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (02/11/2015 00:25:50 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Hi-Rez Studios Authenticate and Update Service erreicht.

Error: (02/11/2015 02:45:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Hi-Rez Studios Authenticate and Update Service erreicht.

Error: (02/11/2015 02:12:21 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Hi-Rez Studios Authenticate and Update Service erreicht.


Microsoft Office Sessions:
=========================
Error: (02/11/2015 00:32:17 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Das Handle ist ungültig

Error: (02/11/2015 00:26:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2015 02:46:14 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/11/2015 02:18:44 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. Das Handle ist ungültig

Error: (02/11/2015 02:13:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2015-01-31 12:18:06.537
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\CMUAC.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-01-31 12:18:06.332
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\CMUAC.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-01-31 12:15:28.083
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\CMUAC.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-01-31 12:15:27.877
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\CMUAC.SYS" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Edit: oke alles gefunden

Was kommt nun? oder was soll ich machen???
__________________
Alt 12.02.2015, 18:29   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Positive Finds addware... - Standard

Positive Finds addware...


AdwCLeaner wenn noch vorhanden löschen.

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 12.02.2015, 20:56   #5
DannyDk2
 
Positive Finds addware... - Standard

Positive Finds addware...


Code:
ATTFilter
# AdwCleaner v4.110 - Bericht erstellt 12/02/2015 um 20:51:11
# Aktualisiert 05/02/2015 von Xplode
# Datenbank : 2015-02-12.1 [Server]
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (x64)
# Benutzername : Admin - ADMIN-PC
# Gestarted von : C:\Users\Admin\Desktop\AdwCleaner_4.110.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Datei Gelöscht : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Datei Gelöscht : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal

***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17631


-\\ Google Chrome v40.0.2214.111


-\\ Chromium v


*************************

AdwCleaner[R0].txt - [3175 Bytes] - [10/02/2015 21:58:19]
AdwCleaner[R1].txt - [1464 Bytes] - [12/02/2015 20:48:52]
AdwCleaner[S0].txt - [3133 Bytes] - [10/02/2015 22:00:38]
AdwCleaner[S1].txt - [1386 Bytes] - [12/02/2015 20:51:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1445  Bytes] ##########
Bitteschön und nu ?


Alt 13.02.2015, 07:06   #6
schrauber
/// the machine
/// TB-Ausbilder
 
Positive Finds addware... - Standard

Positive Finds addware...


Revo Uninstaller - Download - Filepony
damit Chrome deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren.

Dann:
https://support.google.com/chrome/answer/3296214?hl=de





ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
--> Positive Finds addware...

Antwort

Themen zu Positive Finds addware...
adware, anleitung, anti, board, chrome, eingefangen, gefangen, gen, hoffe, leitung, loswerden, positive, positive finds, problem, programme, programmen, prozesse, sache, tagen, troja, trojaner, trojaner board, versuch, versucht, virus, ärgerlich


« Positive finds lässt sich nicht entfernen | Positive Finds Problem »


Ähnliche Themen: Positive Finds addware...


  1. Problem mit Positive Finds
    Plagegeister aller Art und deren Bekämpfung - 02.07.2015 (5)
  2. Positive Finds ad entfernen
    Plagegeister aller Art und deren Bekämpfung - 06.03.2015 (14)
  3. Positive Finds ads
    Plagegeister aller Art und deren Bekämpfung - 26.02.2015 (10)
  4. Ad by positive finds entfernen
    Plagegeister aller Art und deren Bekämpfung - 24.02.2015 (14)
  5. Windows 8: Positive Finds Ads
    Plagegeister aller Art und deren Bekämpfung - 20.02.2015 (11)
  6. Positive Finds eingefangen.
    Plagegeister aller Art und deren Bekämpfung - 20.02.2015 (15)
  7. Positive Finds ads, ABP
    Log-Analyse und Auswertung - 19.02.2015 (8)
  8. Positive finds
    Plagegeister aller Art und deren Bekämpfung - 15.02.2015 (13)
  9. Positive Finds entfernen
    Anleitungen, FAQs & Links - 12.02.2015 (2)
  10. Positive finds
    Plagegeister aller Art und deren Bekämpfung - 12.02.2015 (52)
  11. ads by positive finds
    Plagegeister aller Art und deren Bekämpfung - 08.02.2015 (11)
  12. Positive finds wie löschen?
    Plagegeister aller Art und deren Bekämpfung - 07.02.2015 (20)
  13. Positive Finds
    Plagegeister aller Art und deren Bekämpfung - 04.02.2015 (13)
  14. Positive Finds Ads
    Plagegeister aller Art und deren Bekämpfung - 04.02.2015 (13)
  15. Positive Finds ads ist hartnäckig!
    Log-Analyse und Auswertung - 03.02.2015 (1)
  16. Probleme mit Positive Finds
    Plagegeister aller Art und deren Bekämpfung - 03.02.2015 (23)
  17. Positive finds ads entfernen
    Plagegeister aller Art und deren Bekämpfung - 31.01.2015 (21)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Positive Finds addware... - Hallo Trojaner Board, ich hab das Problem das ich mir wohl ein Virus eingefangen habe oder ne adware seit 2 tagen habe ich nun diese Positive Finds ad Sache im - Positive Finds addware......
Archiv
Du betrachtest: Positive Finds addware... auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131